How can I help you? Start Chat

US Phone: 1-866-488-6691
International Phone: +44-2036087492

  • E-Mail
  • Facebook
  • LinkedIn
  • Twitter

Check Point vSEC for Amazon Web Services

Check Point vSEC for Amazon Web Services (AWS) extends advanced threat prevention security to protect customer data and services in Amazon’s cloud while enabling secure connectivity across your cloud and on-premises environments. As an AWS Security Competency partner, vSEC compliments cloud security controls to enable you to easily and seamlessly secure your assets in the cloud with elastic scalability and high availability by integrating with AWS infrastructure services.


Comprehensive threat prevention for your Amazon cloud

  • Safeguard data and assets in AWS public cloud
  • Securely connect enterprise and mobile users
  • Advanced protection against sophisticated malware and zero-day attacks
  • Auto-scaling security and high availability

Easily extend security to your Amazon cloud

  • Available in the AWS Marketplace with hourly on-demand (PAYG) and Bring Your Own License (BYOL) options
  • Rapid, one-click deployment
  • Tailor security protections to your specific business needs

Unified management of public cloud and hybrid environments

  • Single pane-of-glass management
  • Consistent policy and threat visibility across public and private cloud infrastructures
  • Security management, logging and reporting leveraging AWS defined objects
  • Simplify compliance reporting for on-premise and cloud assets

From a network operations standpoint, we are spending less than 2 percent of our expenses to run and manage all of our cloud infrastructure, as well as our internal network and user support. With cloud computing, secured by Check Point solutions, we can leverage world class infrastructure that we would never be able to build on our own as a startup.

Jason Warner

Ph.D., Director of Bioinformatics

Courtagen Life Sciences



Advanced Threat Prevention Security

Check Point vSEC for AWS delivers comprehensive security protections to safeguard your cloud applications and data including:

  • FirewallIPSAntivirus and Anti-Bot protect services in the public cloud from unauthorized access and attacks.
  • Application Control prevents application layer denial of service attacks and protects your cloud services.
  • IPsec VPN provides secure communication into cloud resources.
  • Mobile Access allows mobile users to connect to the cloud using an SSL encrypted connection with two factor authentication and device pairing.
  • Data Loss Prevention protects sensitive data from theft or unintentional loss.
  • SandBlast Zero-Day Protection provides the most comprehensive protection against malware and zero-day attacks.

Two-Step Deployment Process

Check Point vSEC for AWS is easily deployed by clicking on the AWS Marketplace link and then enabling relevant Software Blade protections in the Amazon cloud for securing your public cloud assets.

Centralized Management for Cloud and On-Premise Infrastructure

Check Point vSEC for AWS is managed using your existing on-premise Check Point Unified Security Management Solutions. A consistent security policy is enforced for corporate assets across both your Amazon cloud and on-premise infrastructures from a single console.

Dynamic and Automated Policy

Check Point vSEC supports dynamic security policies that leverage AWS defined-objects to automatically adjust security to changes in a dynamic cloud environment.

Consolidated Logs and Reporting for Hybrid Cloud Environments

Check Point vSEC for AWS consolidates threat visibility and enforcement across your cloud and on-premise infrastructures. vSEC for AWS improves visibility, logging, forensics and reporting by leveraging AWS-defined objects. Unified logs and reporting simplify compliance and audits.

AWS CloudFormation Template for Easy Virtual Appliance Setup

Check Point vSEC for Amazon Web Services can be quickly deployed and provisioned using the AWS CloudFormation template.

Simply go to the AWS CloudFormation web console, provide this URL template and you are ready to go.

Auto-Scaling Security and AWS High Availability Zones

Check Point vSEC can be deployed for business-critical use cases that demand high availability by leveraging support for multiple Availability Zones and integration with AWS Elastic Load Balancers and CloudWatch. The powerful auto-scaling capability allows security to grow elastically with the changing capacity requirements of a dynamic business environment.

Learn More


Supported ReleasesR75, R75.40, R77.10, R77.30, R80.10
Supported Cloud PlatformAmazon VPC
Supported RegionsPublic AWS, AWS GovCloud, AWS China
License ModelPay As You Go (PAYG),

Bring Your Own License (BYOL)


Compute Instance Type /
Test Case
c4.largec4.xlargec4.2xlarge c4.4xlarge c4.8xlarge
Firewall + IPS300 Mbps500 Mbps1000 Mbps2000 Mbps4000** Mbps
NGFW (Firewall + IPS + Application Control)300 Mbps500 Mbps1000 Mbps2000 Mbps4000** Mbps
NGTP (Firewall + IPS + Application Control + URL Filter + Anti-Virus + Anti-Bot)200 Mbps400 Mbps600 Mbps1000 Mbps1600** Mbps
** Estimate (conservative)
- Performance can be limited by the network bandwidth allocated by AWS to the VM
- Test environment uses Check Point real world blend and vSEC for AWS Gateway R77.30